A harmless operation like copying text from an Internet site can open the door to a cyber attack. That’s how.
The greatest danger comes when a subverts attack one of our indisputable certainties. When we copy an element with the classic Ctrl + C, for example, we do not say even the problem of what we actually copied to the clipboard. And why should we?
According to Dylan Ayrery , we should be very carefully. Especially when the element that we have copied will be pasted into a Prompt window in Power Shell or in a terminal window.
The crux of the matter is that the copied content changes when you paste it. And if this happens in a terminal window, it means that a command is executed instantly, performing any kind of action on your computer.
The typical scenario in which an attacker can use such a technique is that of a Web page that shows, for example, a guide with rather long and complex instructions. In front of commands followed by a variety of options (usually cryptic), who would not use the copy-paste?
To protect against such an attack there is only one reliable method: paste the copied text to Notepad before using it, making sure it matches the original.